Hims & Hers Data Breach Exposes Customer Data via Compromise at Third-Party Customer Support Provider The Hims & Hers data breach involved the compromise of an unnamed customer support system through social engineering.

Full story 👇
www.technadu.com/hims-hers-da...

#Cybersecurity #DataBreach #ThirdPartyRisk #Infosec

Is TikTok Too Risky for Businesses? Here’s the Cyber Security Verdict… From a security point of view, should you worry about your people using TikTok? Depends who you ask. And when.

That 'free' social media tool connected to your company account got breached. Now hackers have your keys via your vendor's terrible code. 30% of 2025 breaches were third-party. 🔓 #SupplyChainAttack #ThirdPartyRisk #FreeIsNeverFree
www.linkedin.com/pulse/tiktok...

#SupplyChainRisk #CyberResilience #ThirdPartyRisk #CrisisLeadership #CrossCompanyCollaboration #RiskManagement #OperationalResilience

From the security team’s perspective:
“The vendor handles security” is where the real investigation usually starts.

#CyberSecurity #ThirdPartyRisk #RealityCheck

Navia Breach Impacts HackerOne Data
Read More: buff.ly/okMMU1I

#ThirdPartyRisk #VendorBreach #HackerOne #EmployeeData #DataExposure #SupplyChainRisk #CyberIncident #Infosec

Moorhead Parks Vendor Hit by Cyberattack
Read More: buff.ly/HwuD9ZP

#ThirdPartyRisk #VendorBreach #CityCyber #Moorhead #ParksAndRec #CustomerData #CyberIncident #InfosecAlert

Alleged Cyberattack on Crunchyroll Exposes Risks in Outsourced Systems Reports allege a March 12, 2026 data breach at Crunchyroll that exposed nearly 100GB of user data—including email addresses, IPs, passwords, and some credit card information—after an attacker gained access via a third‑party vendor. Crunchyroll has not confirmed the full scope, but the incident underscores risks from outsourced ticketing and support...

A reported cyberattack on Crunchyroll on March 12, 2026, exposed nearly 100GB of user data via a third-party vendor, including emails, IPs, passwords, and some credit card info. #DataBreach #ThirdPartyRisk #USA

Crunchyroll Breach Claims 100GB Leak
Read More: buff.ly/9TfzGDQ

#Crunchyroll #DataBreach #ThirdPartyRisk #Sony #UserData #BreachClaims #CyberIncident #InfosecNews

Attackers are targeting your vendors.

On March 26 | 11 AM ET, join Evan Tegethoff & Emma Stevens to see how Dark Web Intelligence helps prioritize third-party risk based on real threat activity.
Register now: https://ow.ly/zLGK50Yrrni

#ThirdPartyRisk #BitsightWebinar

Attackers are targeting your vendors. Are you prioritizing risk based on real threat activity?

Join Evan Tegethoff & Emma Stevens on March 26 | 11 AM ET to see how Dark Web Intelligence transforms TPRM.

Register now: https://ow.ly/PUIb50YrriM

#ThirdPartyRisk #BitsightWebinar

Things I’ve heard that made me uncomfortable:
“The vendor said security is handled in the next release.”
#ThirdPartyRisk #AppSec #ThingsIHeard

Portend AI monitors vendors, partners, competitors, customers, and key personnel to detect supply chain risks. It offers real-time insights into vulnerabilities, geopolitical threats, and disruptions to help mitigate risks.

learn more: portend.ai

#risk #supplychain #thirdpartyrisk #PortendAI

AI Recommendation Poisoning: summaries + URL prompts can poison memory.
MS: 50+ prompts, 31 firms.
Takeaway: procurement needs sources; keep memory off.
www.microsoft.com/en-us/secur...

Memory on?
#Cybersecurity #ThirdPartyRisk

Attackers are targeting your vendors. Are you prioritizing risk based on real threat activity?

Join Evan Tegethoff & Emma Stevens on March 26 | 11 AM ET to see how Dark Web Intelligence transforms TPRM.

Register now: https://ow.ly/hkXU50YrqsV

#ThirdPartyRisk #BitsightWebinar

Ericsson US Confirms Third-Party Breach
Read More: buff.ly/JUAZwD6

#Ericsson #ThirdPartyRisk #VendorBreach #DataExposure #EnterpriseSecurity #SupplyChainRisk #CyberIncident #Infosec

GitHub’s Secure Open Source Fund: 67 key projects.
98 maintainers, $670k. 191 new CVEs. 250+ secrets prevented; 600+ fixed.
Takeaway: inventory top deps, require signed releases, enable secret scanning.
Which dependency scares you most?
#SupplyChainSecurity #AI #ThirdPartyRisk

Third-party breaches are cascading.
136 major incidents in 2025.
~26,000 additional impacted companies beyond named victims.
73-day median disclosure lag.
Top shared vendors show high KEV exposure and credential leakage
Is concentration risk the real systemic weakness?
#CyberSecurity #ThirdPartyRisk

ManoMano Breach Hits 38M Customers
Read More: buff.ly/jLuNhHA

#ManoMano #DataBreach #ThirdPartyRisk #CustomerData #MassDataExposure #BreachDisclosure #CyberIncident #Infosec

Agent-to-agent scams = supply-chain attacks.
3,505 Claude skills: 71 malicious, 73 high-risk.
Takeaway: allowlist skills, least privilege, log every tool call.
Review before install or after it breaks?
#SupplyChainSecurity #Cybersecurity #AI #ThirdPartyRisk

ManoMano confirms a data breach impacting 38M customers, linked to a third-party service provider.
PII and support communications reportedly exposed.

No passwords accessed. Authorities notified.
Another case highlighting supply chain cyber risk.

#CyberSecurity #DataBreach #ThirdPartyRisk #Infosec

Home - InfoTransec Your Cybersecurity Powerhouse Cyber Security Assessment Incident Response Vulnerability Management Penetration Testing Cyber Threat Intelligence THE C.I.A. FRAMEWORK OR TRIAD Delivering high quality…

Third-party vendors expand your attack surface.
Have you tested your response to a vendor breach?

Strengthen resilience now: infotransec.com
#ThirdPartyRisk #VendorRisk #CyberSecurity #Governance

64% of the financial sector’s supply chain is unmonitored—and attackers know it. Here’s how leading security teams are closing visibility gaps and prioritizing risk that actually matters.
👉 Read more https://ow.ly/Mb3x50XX3AZ

#ThirdPartyRisk #BitsightBlog

US Health Firm Reports 140K Breach
Read More: buff.ly/gKlJxZq

#HealthcareBreach #VikorScientific #ThirdPartyRisk #MedicalData #PHIData #CyberIncident #DataProtection #BreachDisclosure

Last call: In 48 hours, Bitsight breaks down the 5 TPRM priorities cyber-resilient organizations are using for 2026. Real-world insights. Limited time to register. https://ow.ly/2OJp50Y2RQ4

#TPRM #ThirdPartyRisk #Bitsight

Non-Human Identity Risks: Permissions, AI Agents, and Hidden Access Podcast Episode · Cyber Insurance News & Information Podcast · February 20 · 1h 22m

Apple - podcasts.apple.com/us/podcast/n...
Amazon - music.amazon.com/podcasts/249...

#CyberSecurity #CyberInsurance #IdentityManagement #IAM #RiskManagement #ThirdPartyRisk #DataBreach #Automation #AIGovernance #CISO

Abu Dhabi Finance Week Data Leak Exposes Global Figures' Passport Information in Cloud Server Lapse A data leak at Abu Dhabi Finance Week exposed more than 700 passports belonging to global figures such as David Cameron.

Full Article: 🔗 www.technadu.com/abu-dhabi-fi...

As major international events digitize attendee management, vendor risk governance becomes critical.
Do you believe event organizers are doing enough to secure attendee data?
#CyberSecurity #DataLeak #CloudSecurity #ThirdPartyRisk #Privacy

Ransomware Halts Payments For BTU Customers
Read More: buff.ly/DtyET3l

#RansomwareAttack #BridgePay #UtilitySecurity #PaymentOutage #CriticalServices #ThirdPartyRisk #IncidentResponse #CyberResilience

Track and mitigate risks across vendors, partners, suppliers, and competitors with Third-Party Risk Management.

portend.ai

#thirdpartyrisk #riskmanagement #vendormanagement #businessrisk #portendai

Volvo employee data exposed via third-party HR provider Conduent.
Nearly 17,000 employees affected.
SSNs + medical data potentially exposed.
SafePay claims 8.5TB stolen.
Supply chain ransomware risk keeps escalating.
Link in pinned comment
#CyberSecurity #DataBreach #Ransomware #ThirdPartyRisk

TPRM breaks down when risk becomes real. On Feb 25, Bitsight leaders share the 5 priorities cyber-resilient organizations are using to strengthen third-party risk programs for 2026. Register now. https://ow.ly/ca1u50Y2ROX

#TPRM #ThirdPartyRisk #BitsightWebinar